Thank you for the 200 Followers!!

I know that doesn't sound like much compared to the big accounts out there. But I've been writing about cybersecurity, SOC work, and breaking into the industry for a while now and 200 real people, most of you students or early career folks trying to figure out how to actually get hired, that means something to me.

So I want to do something for you that I genuinely wish someone had done for me.

The Problem With Every SOC Course I've Ever Seen

Here's the thing nobody tells you before your first analyst job:

The tools are the easy part.

Splunk, CrowdStrike, Wireshark, you can learn those on YouTube. Documentation exists. Labs exist. You can figure out how to run a query.

What nobody teaches you what no course, no certification, and no bootcamp prepares you for is what it actually feels like to sit in front of a real alert and figure out what happened.

That moment of: Where do I even start? What does this mean? Is this a real threat or noise? What do I click next?

That's the gap. That's what separates candidates who pass interviews from candidates who freeze when asked "walk me through how you'd investigate a suspicious login." That's what makes the first 90 days brutal for most freshers.

I can't fix that with another article.

But I can show you.

Live SOC Investigation: Watch Me Work

May 16, 2026 (Saturday) · 7:00 PM IST · 1:30 PM UTC · 45 minutes · Completely Free

This is not a webinar with slides. There are no slides.

I'm going to open a real attack scenario, live, on screen and investigate it from start to finish while you watch. You'll see what I look at first. Where I pivot when something doesn't add up. What I'm thinking at every step. The dead ends. The "aha" moments. The whole thing.

By the end of 45 minutes, you will have watched a complete SOC investigation go from alert to conclusion.

No theory. No pitch. Just the actual work.

What We'll Cover

A real attack scenario investigated live not a sanitized textbook example. A scenario that mirrors what analysts actually see.

The exact thought process a working SOC analyst uses how to read an alert, what context to pull, how to build a timeline, when to escalate, when to close.

What freshers consistently get wrong in their first 90 days I've seen the same mistakes over and over. I'll name them directly so you can avoid them.

A live Q&A at the end ask me anything. Career questions, investigation questions, how to study, how to get your first role. I'll stay as long as the questions keep coming.

Who This Is For

If you're in your final year of CS or IT, or you've recently graduated and you're trying to break into cybersecurity, this session is built for you.

Specifically, if you've been:

  • Studying for certifications but feeling like something is still missing
  • Getting interviews but struggling to answer the "real-world scenario" questions
  • Wondering what a SOC analyst actually does all day
  • Unsure how to go from knowledge to job-ready

Show up. Watch. Ask questions.

This is also for anyone who's been following along here and wants to see the work behind the writing, not just the concepts, but the craft.

Why Free? No Catch?

Because 200 of you have been reading what I put out, and that's not nothing.

You showed up consistently. This is me showing up for you.

The Details

Event: Live SOC Investigation — Watch Me Work Date: Saturday, 16 May 2026 Time: 7:00 PM IST / 1:30 PM UTC Duration: 45 minutes Cost: Free Format: Live screen share investigation + Q&A

Seats are limited so the Q&A stays useful. Register early.

Register Here FOR FREE

Live SOC Investigation - Watch Me Work with Manubhav Sharma

See a real cyberattack investigated, live, step by step.

topmate.io

One Last Thing

If you know someone who's been trying to get into cybersecurity a friend, a batchmate, a junior send this to them. The more people who show up with genuine curiosity, the better the session gets for everyone.

See you on the 16th.

None

Follow for more practical cybersecurity content no fluff, no hype, just the work.